Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/BRAok8tU0LUQNJyw0k_2aOxFLPw.roa
File: BRAok8tU0LUQNJyw0k_2aOxFLPw.roa (raw, json)
Hash identifier: ldc3uxwNzx7gdpb3efUNvb1/bDNZQETCiUu3eYZB/Sk=
Subject key identifier: 05:10:28:93:CB:54:D0:B5:10:34:9C:B0:D2:4F:F6:68:EC:45:2C:FC
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0CF0
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/BRAok8tU0LUQNJyw0k_2aOxFLPw.roa
Signing time: Mon 10 Feb 2025 14:10:18 +0000
ROA not before: Mon 10 Feb 2025 14:10:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 24169
IP address blocks: 150.129.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3312 (0xcf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Feb 10 14:10:18 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=05102893CB54D0B510349CB0D24FF668EC452CFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d8:87:b3:ab:bb:2c:b9:d5:1c:9d:26:02:cb:
b0:07:dd:5c:a3:35:b8:50:fe:61:02:c6:5f:55:e3:
b3:3d:57:8d:7f:d1:6e:a0:de:28:70:0c:73:49:b9:
e8:1e:c6:ff:73:73:02:0f:78:e7:a4:59:40:92:82:
1e:ab:cb:e5:11:55:96:83:50:82:26:3d:5c:f1:24:
ea:f8:43:16:fd:29:3b:30:cd:f7:35:36:21:06:16:
26:42:13:f6:26:6c:af:9c:c5:1a:da:36:34:6b:d6:
f2:ca:02:da:e1:3c:67:6e:c5:be:22:b7:fc:8e:31:
6d:92:a6:8d:f7:a4:31:5e:8d:42:70:dc:d1:b4:92:
0c:01:60:1a:a5:7f:a9:33:14:69:49:d8:bc:d5:4d:
c5:be:72:3c:8f:e6:45:ce:f0:da:3d:ec:98:48:06:
8b:3a:da:66:a3:26:4a:5d:fb:3b:e9:d3:d4:11:7c:
2e:38:31:15:19:bb:6f:75:f6:81:51:30:c1:b4:c0:
2a:82:90:1d:82:37:81:69:98:6f:0e:3a:6f:3e:5e:
7c:6f:7e:54:ac:33:cc:84:1e:20:a3:43:35:1c:05:
55:6b:fc:b6:96:03:6f:96:b1:d9:d7:b6:c6:59:82:
04:f4:76:d1:f1:51:11:42:62:33:d1:14:c0:6c:4c:
cf:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:10:28:93:CB:54:D0:B5:10:34:9C:B0:D2:4F:F6:68:EC:45:2C:FC
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/BRAok8tU0LUQNJyw0k_2aOxFLPw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.129.36.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:03:77:95:27:a4:1f:f1:20:3d:17:cc:fb:83:7d:b0:47:0d:
11:2e:41:01:d6:ea:db:24:88:c3:05:e2:7e:d7:c5:df:ad:60:
b6:1a:4c:1b:ce:5a:cf:c0:e8:62:a4:72:10:55:d4:67:b8:f3:
83:d8:96:7a:fe:44:b5:8e:e4:60:09:8a:aa:43:e3:a1:45:07:
18:4c:b9:88:a4:a1:8b:a7:ea:0d:3a:c0:f9:b8:10:50:55:df:
ff:54:0d:47:7c:f3:d4:92:27:9b:7b:d3:b6:4c:73:26:21:fa:
8f:aa:96:99:6d:eb:f9:c9:80:4a:7d:61:78:b8:9c:c5:7b:de:
47:4c:a2:0f:e4:67:0f:bf:7e:c4:ab:56:d1:a6:c6:4b:d4:bb:
0d:94:c6:fd:2e:38:23:e4:13:9e:63:81:12:f5:7e:02:9c:49:
fc:e2:e2:37:1c:43:86:70:59:7a:ba:e7:38:83:4d:fc:98:f0:
b4:95:48:48:7b:bb:14:2b:42:1d:fe:29:34:e2:cd:78:c3:68:
43:29:2e:89:9d:7e:fd:5c:cd:d8:8c:6a:1f:68:86:a1:07:da:
bf:4a:3f:ae:26:b8:4b:a0:54:0d:97:40:5a:26:a4:3e:85:17:
00:2a:59:50:cd:66:7e:b2:6c:90:94:1f:51:10:c3:b6:45:f3:
cf:ff:09:58
-----BEGIN CERTIFICATE-----
MIIE2jCCA8KgAwIBAgICDPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1
NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTAyMTAx
NDEwMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1MTAyODkzQ0I1NEQw
QjUxMDM0OUNCMEQyNEZGNjY4RUM0NTJDRkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCo2Iezq7ssudUcnSYCy7AH3VyjNbhQ/mECxl9V47M9V41/0W6g
3ihwDHNJuegexv9zcwIPeOekWUCSgh6ry+URVZaDUIImPVzxJOr4Qxb9KTswzfc1
NiEGFiZCE/YmbK+cxRraNjRr1vLKAtrhPGduxb4it/yOMW2Spo33pDFejUJw3NG0
kgwBYBqlf6kzFGlJ2LzVTcW+cjyP5kXO8No97JhIBos62majJkpd+zvp09QRfC44
MRUZu2919oFRMMG0wCqCkB2CN4FpmG8OOm8+XnxvflSsM8yEHiCjQzUcBVVr/LaW
A2+WsdnXtsZZggT0dtHxURFCYjPRFMBsTM89AgMBAAGjggH2MIIB8jAdBgNVHQ4E
FgQUBRAok8tU0LUQNJyw0k/2aOxFLPwwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU
LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t
Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vQlJBb2s4dFUw
TFVRTkp5dzBrXzJhT3hGTFB3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC
AAEwBgMEAJaBJDANBgkqhkiG9w0BAQsFAAOCAQEAvwN3lSekH/EgPRfM+4N9sEcN
ES5BAdbq2ySIwwXiftfF361gthpMG85az8DoYqRyEFXUZ7jzg9iWev5EtY7kYAmK
qkPjoUUHGEy5iKShi6fqDTrA+bgQUFXf/1QNR3zz1JInm3vTtkxzJiH6j6qWmW3r
+cmASn1heLicxXveR0yiD+RnD79+xKtW0abGS9S7DZTG/S44I+QTnmOBEvV+ApxJ
/OLiNxxDhnBZerrnOINN/JjwtJVISHu7FCtCHf4pNOLNeMNoQykuiZ1+/VzN2Ixq
H2iGoQfav0o/ria4S6BUDZdAWiakPoUXACpZUM1mfrJskJQfURDDtkXzz/8JWA==
-----END CERTIFICATE-----
Generated at Thu Apr 17 05:03:38 2025 by rpki-client